Privacy Policy

Privacy Policy

Last updated: October 19, 2025

1) Who we are

This website is operated by Jelena Bojić (“we”, “us”, “our”). You can reach us via the contact form at /contact.

2) What this policy covers

This policy explains what personal data we process when you visit our site, contact us, or otherwise interact with us online. It also sets out your rights under the EU/UK data-protection rules. The lawful bases and rights referenced below come from the General Data Protection Regulation (GDPR). EUR-Lex

3) Data we process

  • Technical and security data: IP address, device and browser details, pages viewed, timestamps, and server-log information generated automatically to operate the site, prevent abuse, and maintain availability. Processing of this kind for network and information security can be based on legitimate interests. GDPR
  • Contact/communication data: Information you provide when you send us a message (e.g., name, email, message content) so we can respond and follow up.
  • Preference storage for essential features: A small technical record may be stored on your device (e.g., in local storage or an equivalent mechanism) to remember necessary choices (such as acknowledging this notice) and provide core functionality. Technologies that store or access information on a user’s device are governed by ePrivacy rules; strictly necessary uses do not require consent but still need clear information. EUR-Lex+1

4) Why we process your data (lawful bases)

We process personal data only where a lawful basis applies:

  • Provide and secure the site: operation, availability, incident prevention and detection, and abuse prevention (legitimate interests). GDPR
  • Respond to your enquiries: manage our relationship and take steps at your request (contract/steps prior to contract). GDPR+1
  • Comply with legal obligations: record-keeping and responding to lawful requests (legal obligation). GDPR

No analytics or advertising technologies are deployed by default.

5) Disclosures and international transfers

For essential operations (e.g., security, hosting, content delivery, email transport) we rely on carefully selected service providers acting under contracts that protect personal data. Some providers may be located outside your home country; where applicable, we use appropriate safeguards permitted by the GDPR. EUR-Lex

6) Retention

We keep personal data only for as long as necessary for the purposes described above. Server logs are retained for a limited period sufficient for security and troubleshooting unless a longer period is required by law.

7) Your rights

If you are in the EEA or UK, you have the right to: accessrectifyeraserestrictobject (especially to processing based on legitimate interests), and portability; you also have the right to lodge a complaint with your data-protection authority. We will act on valid requests as required by GDPR Articles 12–23. GDPR+1

To exercise your rights, contact us via /contact. If we cannot reasonably identify you, we may request additional information before acting on your request. EUR-Lex

8) Children

This site is not directed to children, and we do not knowingly collect personal data from children.

9) Changes to this policy

We may update this policy from time to time. When we make material changes, we will change the “Last updated” date and, where appropriate, provide additional notice.